I tried Gradle 4.8’s dependency locking. It only listed coordinates for explicitly listed dependencies, but not for their transitive dependencies, in files under
Is there any way to also lock transitive dependencies?
I can think of some situations where warning about changing transitive dependency versions would be useful, e.g.:
if I currently depend on artifact A 1.0, which has a transitive dependency on X 2.0, and if X is not anywhere else in my dependency graph, then Gradle will use X 2.0. If I subsequently add a dependency on artifact B 1.0, which has a transitive dependency on X 3.0, then I would assume that Gradle would start using X 3.0. Would dependency locking warn that X was bumped from 2.0 to 3.0? Or would that not warn since the coordinates for X are not in the lock file?
the same coordinates (including version) resolve to different artifacts in two different repos. The artifact in repo 1 has a transitive dependency on X version 1.0, but the artifact in repo 2 has a transitive dependency on X version 2.0. If I switch from repo1 to repo2 in my build, would dependency locking warn about this change?